Back to VulnFeed / CVE-2026-47345
root@hackertop:~/vulnfeed/CVE-2026-47345#
CVE-2026-47345 LOW CVE ⚠ Unpatched · Zero-day◉ PoC 公开 Lifecycle 4/7

TYPO3 HTML Sanitizer up to 2.3.1 cross site scripting

HTML Sanitizer 26d ago Impact pending confirmation
LIFECYCLE
3.4 CVSS
Vulnerability Detail Mitigation Lifecycle CVSS Assessment
Vulnerability Description
A vulnerability was found in TYPO3 HTML Sanitizer up to 2.3.1 (Content Management System). It has been declared as problematic. Affected by this vulnerability is an unknown part. Upgrading to version 2.3.2 eliminates this vulnerability.
Root Cause Analysis
The CWE definition for the vulnerability is CWE-79. The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Impact: As an impact it is known to affect integrity.

Countermeasure: Upgrading to version 2.3.2 eliminates this vulnerability.
Validation (PoC/EXP) - Looking for Contributors
No public PoC yet

Public validation traces already exist. Community contributors can extend them with richer reproduction content.

Contribute Your PoC/EXP
Log in to contribute PoC/EXP content. Log in
Back to VulnFeed
CVE-2026-47345 · CVSS 3.4 · Active Threat